Vulnerabilities > Gamipress

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-19	CVE-2023-25715	Missing Authorization vulnerability in Gamipress Missing Authorization vulnerability in GamiPress GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress.This issue affects GamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress: from n/a through 2.5.6. network low complexity gamipress CWE-862	6.5
2023-10-31	CVE-2023-24000	SQL Injection vulnerability in Gamipress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GamiPress gamipress allows SQL Injection.This issue affects GamiPress: from n/a through 2.5.7. network low complexity gamipress CWE-89 critical	9.8
2023-02-06	CVE-2023-0154	Unspecified vulnerability in Gamipress The GamiPress WordPress plugin before 1.0.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. network low complexity gamipress	5.4

Vulnerabilities > Gamipress {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Gamipress"}]}